CVE-2020-36837 CRITICAL

CVE-2020-36837: ThemeGrill Demo Importer 1.3.4 - 1.6.1 - Authorization Bypass to Site Reset

Vendor Themegrill
Product ThemeGrill Demo Importer
Weakness CWE-862 · Missing authorization
Published October 16, 2024
Last update October 16, 2024

CVSS base score

9.9/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the reset_wizard_actions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there is a user named 'admin', the attacker will become automatically logged in as an administrator.

Key dates

02Disclosure timeline

October 16, 2024 CVE published
October 16, 2024 Record updated